Omnipressteam Omnipress

6 CVEs affecting Omnipressteam Omnipress. Latest disclosed: 2026-02-19. Critical: 0, High: 2.

Top CVEs affecting Omnipressteam Omnipress
CVESeverityScorePublishedSummary
CVE-2026-24538High7.52026-01-23Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in omnipressteam Omnipress omnipress allo…
CVE-2024-49278High7.12024-10-17Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in omnipressteam Omnipress omnipress allows Stored XSS.This…
CVE-2026-25432Medium6.52026-02-19Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in omnipressteam Omnipress omnipress allows Stored XSS.This…
CVE-2025-53276Medium6.52025-06-27Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in omnipressteam Omnipress omnipress allows DOM-Based XSS.Th…
CVE-2025-12163Medium6.42025-12-05The Omnipress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6.5 due to insuffi…
CVE-2024-13407Medium4.32025-03-14The Omnipress plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.4 via the megamenu block due to insufficient…